Y'all have probably noticed that blogspot is turning up in a lot
of the spamming links that show up on asm, in addition to
legitimate blogs. This security alert talks about how some of
those blogs have been hijacked to distribute worm software and
steal login information to legitimate sites (like bank accounts).
Be careful what you click on!
http://blog.washingtonpost.com/secur...=news-col-blog
"the individual or group behind the Storm worm is distributing
new versions of the malware with the help of hijacked and
newly-created Google Blogspot blogs."
"The twist with the new attacks is that someone has apparently
planted the malicious Storm download links on hundreds of Google
Blogspot pages ... A Google search for Blogspot blogs that
contain links to the malicious Web sites -- "uhavepostcard.com"
and "happycards2008.com" (do NOT visit these sites)-- shows
plenty of Blogspot blogs that appear to be hosting links to the
Storm download sites."
" Clicking on links anywhere on this Blogspot site -- which
appears to be a strange mock-up of a Bank of America phishing
e-mail - takes you to a nicely-done Bank of America phishing site
that is still active as of this writing.
"This particular phishing site uses what's known as a
man-in-the-middle attack, so when you pass your logon credentials
to the phishing site, it will actually log you in at the real
Bank of America Web site while stealing your credentials."
FurPaw
--
"Every gun that is made, every warship launched,
every rocket fired, signifies in the final sense
a theft from those who hunger and are not fed,
those who are cold and are not clothed."
- Dwight D. Eisenhower
To reply, unleash the dogs.
![<!-- google_ad_section_start -->[OT] Security Alert - be wary of clicking on Blogspot links<!-- google_ad_section_end -->](http://www.health-forums.com/images/softblue/spacer.gif){kind=small}
[OT] Security Alert - be wary of clicking on Blogspot links 
Linear Mode
